Amir Herzberg wrote:
Nothing much new, just an attempt to provide a
fair-yet-critical survey, hopefully to help clarify this important
subject. Comments will be most welcome. Abstract below.
Amir Herzberg
Title: DNS-based Email Sender Authentication Mechanisms: a Critical Review
Perhaps I misunderstand the paper, but it appears to be asserting that DKIM
validates the From: field.
DKIM allows authentication of multiple
email header fields, including the sender identity displayed to the recipient; in
that regard, it is similar to SIDF
Since DKIM does nothing of the kind, that seems a rather fundamental point of
departure for evaluating the paper.
DKIM authenticates the signing domain, and it ensures data integrity for the
covered header fields and body, from the place of signing to the place of
verification. But it does not authenticate any of the message contents, such as
the sender identity.
d/
--
Dave Crocker
Brandenburg InternetWorking
bbiw.net
_______________________________________________
Asrg mailing list
Asrg(_at_)irtf(_dot_)org
http://www.irtf.org/mailman/listinfo/asrg